Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
File: 5ZAclsdH6RYsrv5QFArlMhsjxXw.mft (raw, json)
Hash identifier: RqwDuQ7ZtfGSzMyz100J2Y0sKRNAl8BBHmnTPovG8oE=
Subject key identifier: 7A:74:05:45:0B:F7:49:8F:92:6D:BC:FA:5C:CC:64:86:BD:7C:29:AE
Authority key identifier: E5:90:1C:96:C7:47:E9:16:2C:AE:FE:50:14:0A:E5:32:1B:23:C5:7C
Certificate issuer: /CN=e5901c96c747e9162caefe50140ae5321b23c57c
Certificate serial: 019D38667C9C3BCBCA11E288F2A925276340
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
Manifest number: 03D9
Signing time: Sun 29 Mar 2026 07:02:13 +0000
Manifest this update: Sun 29 Mar 2026 07:02:13 +0000
Manifest next update: Mon 30 Mar 2026 07:02:13 +0000
Files and hashes: 1: 5ZAclsdH6RYsrv5QFArlMhsjxXw.crl (hash: DqsV16gIwB32MoRMXImgiNo4oujXQiLaFOAO4Y87N1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:7c:9c:3b:cb:ca:11:e2:88:f2:a9:25:27:63:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5901c96c747e9162caefe50140ae5321b23c57c
Validity
Not Before: Mar 29 07:02:13 2026 GMT
Not After : Mar 30 07:02:13 2026 GMT
Subject: CN=7a7405450bf7498f926dbcfa5ccc6486bd7c29ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:87:ea:b8:94:5a:9e:61:dd:4c:4b:48:71:99:
94:3a:55:df:48:a3:4a:5f:9c:c2:89:c6:87:a7:5b:
1f:ca:18:46:e0:ae:24:e1:61:20:69:02:4c:33:aa:
50:e8:cb:a9:c9:91:ca:68:b2:3f:04:01:45:20:a4:
3c:ba:11:bc:b8:10:67:70:38:d1:25:58:7c:5f:eb:
c7:9b:7d:cc:5d:a5:96:dc:13:26:6b:15:c1:06:c0:
88:97:87:30:88:00:af:cf:fa:6e:02:f9:76:fb:7a:
cf:1f:a5:6c:bb:7c:26:ed:b5:95:15:0e:a8:7b:04:
8d:ab:2b:e1:23:15:df:59:d5:08:16:ec:18:95:e5:
a5:5c:e7:c9:d4:20:15:d6:03:d4:d7:60:49:46:22:
a0:e3:59:e9:f4:64:f2:24:b4:4d:0f:53:b1:60:20:
41:30:50:88:65:96:17:3b:9e:59:df:98:91:b4:9c:
af:7e:86:0c:17:41:94:ba:47:2b:c6:8f:ae:82:86:
02:2f:7a:4f:12:8b:85:55:e7:58:8c:2f:fd:df:ef:
99:4c:08:f0:7a:7f:80:f1:d1:fe:f0:c5:f2:07:c7:
92:2d:a5:4c:30:a2:ba:8e:f7:c9:e5:33:8a:0e:2f:
e3:0d:70:5b:b2:78:58:f9:4b:8f:21:7e:0e:78:5a:
2b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:74:05:45:0B:F7:49:8F:92:6D:BC:FA:5C:CC:64:86:BD:7C:29:AE
X509v3 Authority Key Identifier:
keyid:E5:90:1C:96:C7:47:E9:16:2C:AE:FE:50:14:0A:E5:32:1B:23:C5:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:cd:06:cf:6f:c7:f4:c2:bb:6c:c8:88:b8:b9:e0:0e:51:3b:
84:29:f4:7b:70:e4:22:70:00:66:b5:bb:0d:02:18:80:2e:48:
1f:56:2c:87:5d:2f:65:93:3e:c5:c7:7b:e0:9d:7d:90:b2:ff:
4f:7d:1d:dc:26:f0:43:29:15:85:ab:f6:fd:7f:6a:96:1b:78:
40:1b:49:dd:a1:e7:4d:6f:cb:f8:83:30:d4:f4:c6:f2:15:fb:
2c:6c:0e:6e:ff:86:bf:f4:6a:d7:22:d7:46:57:e0:d6:0c:cc:
d0:4e:4b:2a:f2:7f:89:14:ea:b1:53:e9:39:3b:e9:c1:ee:8f:
b8:99:c9:51:0e:5b:3e:d3:0f:50:8e:d4:35:4a:1f:25:d0:de:
e9:cb:15:a3:7a:e2:3e:18:2d:22:1c:e0:7c:9a:d8:7f:2a:53:
58:af:8d:54:8d:af:a4:ab:fa:6f:9d:f2:61:a3:2e:3c:e1:02:
63:c2:a6:93:41:aa:41:9f:47:4c:72:ab:3a:21:54:95:e4:08:
ac:24:68:f4:e1:17:39:3d:40:87:2a:26:8c:78:89:0e:e2:ef:
16:7b:3e:a8:33:ca:a7:32:55:cc:11:be:c3:c7:c3:53:1f:a6:
df:ee:8c:2b:15:80:5d:2a:57:be:a1:88:86:bb:83:54:81:76:
d4:8f:b4:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:10 2026 by rpki-client